Messages

Hi there :)

I am trying to get the Captive Portal with my Guest network to operate. However, the problem is that ano clients are automatically forwarded to the login page (iPad, Chrome phone or Windows computer)

I configured it according to the documentation (https://docs.opnsense.org/manual/how-tos/guestnet.html).

What is strange for me is that it was working before (as I'm new to OPNsense & I've started implementation not so long ago, I can't tell exactly when it started not to work anymore. I've configured the base as in the doc, saw it was working and let it there. I've the feeling it was working with 20.1.3 but I can't vouch if 20.1.4 broke the thing.

What is weird, whenever it was redirecting or now (not working anymore), my captive portal is accessible at http://192.168.XXX.1:8001 (not 8000 as I saw almost everywhere). I can't explain why and don't know if it is a config issue.

However, otherwise I just get "server not found" when I try to open any page, no matter if https or http.

Some settings about the setup:
- 2 physical NICs (it's a VM), one is WAN, the other is tagged for all the different subnets (guest, prod, mutimedia)
- I'm not using a proxy (for now)
- I'm using Unbound with DNSsec active
- the captive portal is not using SSL and no hostname is defined.
- DHCP works fine in the guest

I've the feeling with other threads in forum that tagged interfaces are often linked with issue... is it ?

Anyway, I'd like to have some help, so I can also understand better how everything works together.
Thanks in advance ! ;)

Do you have any Rules on the VPN Interfaces to allow traffic from one LAN to the other?

For now on, I've only the OpenVPN interface with an open rule (capture).
I've removed the extra VPN interface you can create in assignement to simplify the troubleshooting (gateway included).

My current setup reflects almost exactly what is mentionned here : https://wiki.opnsense.org/manual/how-tos/sslvpn_s2s.html

Hi there,

I'm trying to setup my first Opnsense infra. There is my home lab and a DR site.
Both have now a firewall and incoming/outgoing traffic t WAN is working fine.

As I like it, I've restricted Outboud traffic to HTTP/HTTPS and for some other ports (see capture)

Now, I've created an OpenVPN server at home and setup the client at the DR site. Connection is active between both FWs.

But I just can't access ressources from one LAN to the other. If I look at firewall logs, I clearly see that the traffic is blocked by the "Default deny rule" (as an example RDP)
If I activate the more generic rule (the one disabled at the top of the capture), it works.

I'm confused, I though VPN traffic would be setup in the OpenVPN interface. In several tutorials, there is also mention of creating a new interface for the OpenVPN opnsX interface, which will create a new gateway.
Setting an open firewall rule on this extra interface didn't solve the issue either.

I'm suspecting a routing issue (VPN traffic should hit the VPN interface first no ?), but it is beyond my knowledge for now :-)

Help very much appreciated !